$ rpki-client -vvf repo-rpki.idnic.net/repo/1a3cc2c1-146c-48a9-b003-7bd83822084d/0/3130332e3136392e312e302f32342d3234203d3e20313432333235.roa File: 3130332e3136392e312e302f32342d3234203d3e20313432333235.roa (raw, json) Hash identifier: QVwXZiEUDkzJTFJTP2kak0B1PFcbgFpWZtYiCacvLzc= Subject key identifier: 93:6C:7A:9D:3F:21:FD:85:73:5C:DF:9B:95:24:57:8D:48:61:3F:DE Certificate issuer: /CN=D2248A04D994A2569A8FF645D4B025A9F7CB2FE7 Certificate serial: 45CE5C6E6360C2D64AF4D2CAA9500B2301AFDBC1 Authority key identifier: D2:24:8A:04:D9:94:A2:56:9A:8F:F6:45:D4:B0:25:A9:F7:CB:2F:E7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1a3cc2c1-146c-48a9-b003-7bd83822084d/0/3130332e3136392e312e302f32342d3234203d3e20313432333235.roa Signing time: Wed 04 Dec 2024 03:04:55 +0000 ROA not before: Wed 04 Dec 2024 02:59:55 +0000 ROA not after: Wed 03 Dec 2025 03:04:55 +0000 asID: 142325 IP address blocks: 103.169.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1a3cc2c1-146c-48a9-b003-7bd83822084d/0/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.crl rsync://repo-rpki.idnic.net/repo/1a3cc2c1-146c-48a9-b003-7bd83822084d/0/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 10:37:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:ce:5c:6e:63:60:c2:d6:4a:f4:d2:ca:a9:50:0b:23:01:af:db:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2248A04D994A2569A8FF645D4B025A9F7CB2FE7 Validity Not Before: Dec 4 02:59:55 2024 GMT Not After : Dec 3 03:04:55 2025 GMT Subject: CN=936C7A9D3F21FD85735CDF9B9524578D48613FDE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ed:ae:69:7e:d4:19:bb:44:2c:1a:bf:dc:cf: 00:96:3b:b0:e9:d1:23:44:b5:1d:2e:d0:80:cb:97: 6b:e5:d3:6a:4d:82:30:a1:53:a3:1b:9f:b1:3c:88: b4:d0:21:ba:a6:a7:57:58:ac:6d:1c:4d:9e:75:d4: b9:1a:8d:e3:c4:ae:f5:c4:8c:1a:46:a7:3f:86:b9: e7:48:e0:97:21:af:de:78:3c:24:52:13:47:90:0d: c7:75:6d:77:28:b4:f5:f9:7f:eb:9b:13:89:a1:91: 3f:b5:cf:a3:3a:dc:4e:48:42:5a:9e:e6:92:ab:82: 30:68:03:91:db:f6:bc:e7:11:e5:d8:53:ba:38:ff: db:2d:fa:c5:b7:23:44:09:7d:73:c0:10:bb:6e:89: bb:ec:5c:c7:05:a7:b3:71:9a:c2:7b:9d:9a:69:31: a5:6a:3d:8e:91:bf:e0:bb:cd:63:aa:be:be:68:f4: 4e:dd:19:42:4c:b0:09:bd:c3:bb:51:c8:7e:04:76: 93:bc:8b:f5:44:02:91:75:3f:06:c8:b4:70:53:fc: b0:af:06:18:80:12:68:10:8b:4f:21:f9:2a:2f:c9: 91:33:8c:34:07:60:a5:7d:8d:0d:3e:5d:16:dc:c8: 50:5c:bd:50:12:53:be:76:d8:dd:21:05:c7:50:ac: e2:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:6C:7A:9D:3F:21:FD:85:73:5C:DF:9B:95:24:57:8D:48:61:3F:DE X509v3 Authority Key Identifier: keyid:D2:24:8A:04:D9:94:A2:56:9A:8F:F6:45:D4:B0:25:A9:F7:CB:2F:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1a3cc2c1-146c-48a9-b003-7bd83822084d/0/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1a3cc2c1-146c-48a9-b003-7bd83822084d/0/3130332e3136392e312e302f32342d3234203d3e20313432333235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.1.0/24 Signature Algorithm: sha256WithRSAEncryption 62:80:04:47:0b:d7:22:ea:71:76:1b:91:dc:29:6c:b8:21:dd: 9e:58:69:e7:61:29:1c:6f:9d:5c:5b:0a:d5:da:18:18:c9:bc: 43:f1:20:9e:6d:1c:d7:33:e0:5b:96:89:3b:a8:a7:8d:42:6e: 87:62:67:54:26:e2:78:62:72:af:9c:ea:c9:54:f9:a6:b5:f8: b7:a1:0f:86:f1:89:52:a6:62:20:4c:b6:44:70:27:ac:e6:e6: 1f:bf:78:8f:e9:9f:7f:ba:7c:b9:02:bf:bb:8a:4f:b2:b0:7a: e4:3f:d7:39:9d:87:61:e9:2b:c8:a1:76:31:af:83:53:96:0c: d0:f9:fd:77:1d:12:00:9b:d8:43:df:12:89:55:db:2a:6f:ed: 51:70:6d:0e:a2:32:23:21:49:9e:55:36:06:8e:6d:b4:25:e0: 14:5e:fa:f1:2e:da:a7:2d:eb:a2:42:87:c8:4d:c0:ff:1c:80: 9f:f1:a3:c8:b1:80:4f:9e:a2:47:86:13:f7:bd:9e:5d:2a:05: 0b:ab:b8:81:77:75:40:42:73:79:9a:05:02:5e:59:8c:a1:1a: 15:03:d6:c6:60:72:44:6d:eb:06:2b:c3:ab:df:f2:69:c3:5b: 89:4a:3c:ac:a7:03:07:09:0d:bf:6b:e3:8f:95:a4:71:6a:c3: 23:5b:88:6a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIURc5cbmNgwtZK9NLKqVALIwGv28EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDIyNDhBMDREOTk0QTI1NjlBOEZGNjQ1RDRCMDI1QTlG N0NCMkZFNzAeFw0yNDEyMDQwMjU5NTVaFw0yNTEyMDMwMzA0NTVaMDMxMTAvBgNV BAMTKDkzNkM3QTlEM0YyMUZEODU3MzVDREY5Qjk1MjQ1NzhENDg2MTNGREUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCw7a5pftQZu0QsGr/czwCWO7Dp 0SNEtR0u0IDLl2vl02pNgjChU6Mbn7E8iLTQIbqmp1dYrG0cTZ511LkajePErvXE jBpGpz+GuedI4Jchr954PCRSE0eQDcd1bXcotPX5f+ubE4mhkT+1z6M63E5IQlqe 5pKrgjBoA5Hb9rznEeXYU7o4/9st+sW3I0QJfXPAELtuibvsXMcFp7NxmsJ7nZpp MaVqPY6Rv+C7zWOqvr5o9E7dGUJMsAm9w7tRyH4EdpO8i/VEApF1PwbItHBT/LCv BhiAEmgQi08h+SovyZEzjDQHYKV9jQ0+XRbcyFBcvVASU7522N0hBcdQrOIPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUk2x6nT8h/YVzXN+blSRXjUhhP94wHwYDVR0j BBgwFoAU0iSKBNmUolaaj/ZF1LAlqffLL+cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YTNjYzJjMS0xNDZjLTQ4YTktYjAwMy03YmQ4MzgyMjA4NGQvMC9EMjI0OEEwNEQ5 OTRBMjU2OUE4RkY2NDVENEIwMjVBOUY3Q0IyRkU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDIyNDhBMDREOTk0QTI1NjlBOEZGNjQ1RDRCMDI1QTlGN0NC MkZFNy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFhM2NjMmMxLTE0NmMtNDhhOS1i MDAzLTdiZDgzODIyMDg0ZC8wLzMxMzAzMzJlMzEzNjM5MmUzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMjMzMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGepATANBgkqhkiG 9w0BAQsFAAOCAQEAYoAERwvXIupxdhuR3ClsuCHdnlhp52EpHG+dXFsK1doYGMm8 Q/Egnm0c1zPgW5aJO6injUJuh2JnVCbieGJyr5zqyVT5prX4t6EPhvGJUqZiIEy2 RHAnrObmH794j+mff7p8uQK/u4pPsrB65D/XOZ2HYekryKF2Ma+DU5YM0Pn9dx0S AJvYQ98SiVXbKm/tUXBtDqIyIyFJnlU2Bo5ttCXgFF768S7apy3rokKHyE3A/xyA n/GjyLGAT56iR4YT972eXSoFC6u4gXd1QEJzeZoFAl5ZjKEaFQPWxmByRG3rBivD q9/yacNbiUo8rKcDBwkNv2vjj5WkcWrDI1uIag== -----END CERTIFICATE-----Generated at Sun Apr 6 16:55:16 2025 by rpki-client